Welcome to WebmasterWorld Guest from 34.229.194.198
Forum Moderators: phranque
Starting February 1st, 2019 there will be no attempt to disable EDNS as reaction to a DNS query timeout.
This effectivelly means that all DNS servers which do not respond at all to EDNS queries are going to be treated as dead.
joined:Jan 25, 2019
posts: 2
votes: 1
DNS flag day is when vendors of recursive name servers will stop releasing
new software that coddles ancient or broken authoritative servers and
firewalls. Instead of trying over and over in different ways to coax some
broken remote system to send back an answer, new resolver software will
just declare the remote server to be broken, and give up.
Nothing will stop working suddenly on February 1. However, the next time
you upgrade your recursive name server to the latest version, you *might*
have problems then. My guess is that you won't, but I can't guarantee it.
If you do have some legacy server running internally that can't be fixed to
support EDNS properly, you can still configure your resolvers not to use
EDNS when talking to that specific server. That option will still be
available after flag day.
An easy way to check would be to install the latest BIND development
release (version 9.13.5) and see if it works. It already has all the flag
day changes in it.
--
Evan Hunt -- [e-mail address redacted]
Internet Systems Consortium, Inc.
...We have observed some false positives due to timeouts that are caused, not by non-compliance but by authoritative server rate limiting....See Testing EDNS Compatibility with dig [kb.isc.org ]
joined:Jan 25, 2019
posts: 2
votes: 1